CVE-2019-8343 — Use After Free in Netwide Assembler

Severity

7.8HIGHNVD

EPSS

0.1%

top 66.51%

CISA KEV

Not in KEV

Exploit

No known exploits

Affected products

Timeline

PublishedFeb 15

Latest updateMay 14

Description

In Netwide Assembler (NASM) 2.14.02, there is a use-after-free in paste_tokens in asm/preproc.c.

CVSS:3.0/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:HExploitability: 1.8 | Impact: 5.9

GHSA

GHSA-qcp9-cxhm-8cf6: In Netwide Assembler (NASM) 2↗2022-05-14

▶

OSV

CVE-2019-8343: In Netwide Assembler (NASM) 2↗2019-02-15

▶

Red Hat

nasm: use-after-free in paste_tokens in asm/preproc.c↗2019-02-14

▶

Debian

CVE-2019-8343: nasm - In Netwide Assembler (NASM) 2.14.02, there is a use-after-free in paste_tokens i...↗2019

▶

Bugzilla

CVE-2019-8343 nasm: use-after-free in paste_tokens in asm/preproc.c [fedora-all]↗2019-02-15

▶

Bugzilla

CVE-2019-8343 nasm: use-after-free in paste_tokens in asm/preproc.c↗2019-02-15

▶